defining a criteria for selecting tone of a plurality of different security methods, 
the plurality of security methods each comprising a plurality of messages selected 
from a set of message types, at least tw v o different security methods having at least 
one message in common; 

selecting one of the said plurality of different security methods in accordance 
with said defined criteria; and 

performing said security method. 

34. (NEW) A method as claimed in claim ^3, wherein said criteria is to select the 
security method is selected at random. 

35. (NEW) A method as claimed in claim 33, Wherein said criteria is to select said 
security method based on the processing capability of the fi rst and/or second pa rty. 

36. (NEW) A method as claimed in claim 33, wnerein said criteria is to select the 
security method in dependence on the amount of time since the l ast security metho d 
was performed. 

37. (NEW) A method as claimed in claim 33, wherein said criteria is to select the 
security method based on the function provided by the security method. 
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38. (NEW) A method as claimedun claim 33, wherein the plurality of security 
methods comprise at least one authentication method and/or at l east one rekeyi ng 
method. 

39. (NEW) A method as claimed in claim 38, wherein at least one authentication 
method includes a key exchange to create a shared secret, 

40. (NEW) A method as claimed in clairp 38, wherein a rekeying method is 
performed after an authentication method. 

41. (NEW) A method as claimed in claim $8, wherein a rekeying method is without 
carried out without authentication. 

42. (NEW) A method as claimed in claim 38\ wherein the rekeying method is 
authenticated. 

43. (NEW) A method as claimed in claim 42, v^herein the set of messages includes 
at least one of the following message types: 

at least one random number message; at least ond hash function message; at least 
one signature function message; at least one parameter for use with a given function 
message; at least one security parameter message; W least one key for a given 
function message; at least one encoded message; atlleast one message to and/or 
from at least one third party; and at least one authentication response message. 




44. (NEW) A method as claimed inlclaim 43 wherein the set of messages includes 
the following message types: one signature function message; two security parameter 
messages; two random number messages; one encoded signature function message; 
one encoded user identification message; two parameters for use with given function 
messages; two hash function messages; pne contact message with a third party; one 
response message from the third party; one authentication response message; and 
two public parameters for the given function. 



45. (NEW) A method as claimed in claim |4, wherein the set of messages are as 
follows: 



l. 

2 . 

3 . 

4 . 
5. 
6. 
7. 
8. 
9. 
10. 

11. 

12 . 

13 . 

14 . 

15 . 



n,g 
R 
R' 
P 
P 1 

g^od n 
g y mod n 

hash[SIG 1] (n|g|g x 
hash[SIG 2] (n|g|g x 
SIG B (hash [SIG1] n|g 
E K (SIGu (hash [SIG2] (n | g | g x | g y | g xy | 
E K (Su) 

hash[AUTH] (njglgr^mod n | R | R 1 |B|U)\, U 
hash[RESP] (hash [SEC] S | hash [AUTH] (n|g|g xy mod n | R | R 1 | B | U) 
hash [SEC] (S | hash [AUTH] (n | g | g xy mod\n | R | R ' | B | U) ) 



J xy | 



P|P' |R«R' |B) 

p|p' |r!r' I B I U) 

Ib) 



g y |g xy |p|PMlRlR' 



P' | R | R' I B | U) ) 



where n and g are Diffie Hellman public parameters.lR and R' are random numbers, P 
and P' are security parameters, g is a generator of the Diffie Hellman exchange, x and 
y are random exponents, n is the modulus of the Diffie Hellman key exchange, B and 
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U are the identity of the first and second parties, SIG represents a signature, e k 
represents encryption, AUTH represents authentication. 

46. (NEW) A method as claimed in claim 43, wherein a first security method uses 
the following messages: the first and secona keys for a given function messages; first 
and second random number messages, first and second security parameter 
messages, a signature function message, one encoded user identification message 
and optionally at least two parameters for use with a given function message. 

47. (NEW) A method as claimed in claim 43 wherein a second security method 
uses first and second random number messages! first and second security parameter 
messages, first and second keys for a given function messages, a signature function 
message and optionally first and second parameters for use with the given function 
message. 



48. (NEW) A method as claimed in claim 43 wherein a third security method uses 
first and second random number messages, first andlsecond security parameter 
messages, first and second keys for given function messages, one encoded user 
identification message, one message to and one message from a third party, one 



authentication response message and optionally first ai 
with a given function message. 



d second parameters for use 
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49. (NEW) A method as claimed in claim 43 wherein said security method is a first 
rekeying method and comprises first and second random number messages. 

50. (NEW) A method as claimed in claim 43 wherein the security method is a 
second rekeying method and uses first and\second random number messages and 
first and second hash function messages. 

51 . (NEW) A method as claimed in claim 43 wherein the security method is a third 
rekeying method comprising first and second fandom number messages, a signature 
function message and an encoded message. 

52. (NEW) A method as claimed in claim 43, Wherein one security method is a 
fourth rekeying method and comprises the use of first and second random number 
messages, one message to and one message fro\n the third party and one 
authentication response message. 

53. (NEW) A method as claimed in claim 43, wherein the given function is a Diffie- 
Hellman function. 



54. (NEW) A method as claimed in claim 43, wherein at least one of said messages 
types comprises two messages, one message being frim the first party and the other 
message being from the second party. 



55. (NEW) A method as claimed imclaim 43, wherein the encoded message is used 
to transfer information as to the identity; of at least one of the first and second parties to 
the other of the first and second parties! 

56. (NEW) A method as claimed in claim 43, wherein at least one of said first and 
second parties is arranged to communicate with a trusted third party and is arranged 
to receive messages from and/or send messages to that trusted third party. 

57. (NEW) A method as claimed in any ofi claims 43, wherein the exchange of 
messages between the first and second parties permits a shared secret to be created 
which is used to authenticate the communication between the parties. 

58. (NEW) A method as claimed in claim 38,\wherein at least one rekeying method 
comprises the steps of exchanging at least one random number between the first and 
second parties. \ 

59. (NEW) A method as claimed in claim 58, wherein at least one of the random 
numbers is authenticated. \ 

60. (NEW) A method as claimed in claim 33, wherein at least one of said first and 
second stations comprises a mobile station. \ 
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61 . (NEW) A method as claimed in claim 60, wherein at least one of the first and 
second stations comprises a base station) 




^y 



in 

•sa? 



62. (NEW) A wireless telecommunication system comprising a first station and a 
second station with means adapted for performing all of the steps of the method 
according to claim 33. 

63. (NEW) A telecommunications network element for securing communication 
between a first party and a second party comprising: 

means for defining a criteria for selecting one of a plurality of different security 
methods, the plurality of security methods each composing a plurality of messages 
selected from a set of message types, at least two diffe\ent security methods having at 
least one message in common; 

selection means for selecting one of said plurality <\f different security methods 
in accordance with said defined criteria; and 

means for ensuring that the communication between ^aid first and second 
parties is in accordance with said selected security method. 
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